Hello dear maintainer(s), the Debian LTS team would like to fix the security issues which are currently open in the Wheezy version of mysql-connector-java: https://security-tracker.debian.org/tracker/CVE-2015-2575
Would you like to take care of this yourself? If yes, please follow the workflow we have defined here: https://wiki.debian.org/LTS/Development [Departing from the boilerplate:] As this project is run by Oracle which has a policy of providing very limited security disclosures, it might be necessary to update to a new upstream version rather than attempting to identify and backport the fix for this specific issue. That would of course require more extensive testing before uploading to wheezy-security. You can discuss the possible risks or issue a call for testing by users on the debian- lts list. [Returning to the boilerplate:] If that workflow is a burden to you, feel free to just prepare an updated source package and send it to debian-lts@lists.debian.org (via a debdiff, or with an URL pointing to the source package, or even with a pointer to your packaging repository), and the members of the LTS team will take care of the rest. Indicate clearly whether you have tested the updated package or not. If you don't want to take care of this update, it's not a problem, we will do our best with your package. Just let us know whether you would like to review and/or test the updated package before it gets released. Thank you very much. Ben Hutchings, on behalf of the Debian LTS team. PS: A member of the LTS team might start working on this update at any point in time. You can verify whether someone is registered on this update in this file: https://anonscm.debian.org/viewvc/secure-testing/data/dla-needed.txt?view=markup -- Ben Hutchings The obvious mathematical breakthrough [to break modern encryption] would be development of an easy way to factor large prime numbers. - Bill Gates
signature.asc
Description: This is a digitally signed message part
